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DETAILED ACTION 

1. Claims 1-11, 13-29, 31-47, and 49-54 were pending in the instant application at 
the time of the previous Office Action, mailed April 2, 2007. By the latest reply, filed July 
16, 2007, new claims 54-57 have been added. Therefore claims 1-11, 13-29, 31-47, and 
49-57 are pending and have been examined. 

Continued Examination Under 37 CFR 1.114 

2. A request for continued examination under 37 CFR 1.114, including the fee set 
forth in 37 CFR 1 .17(e), was filed in this application after final rejection. Since this 
application is eligible for continued examination under 37 CFR 1.114, and the fee set 
forth in 37 CFR 1.17(e) has been timely paid, the finality of the previous Office action 
has been withdrawn pursuant to 37 CFR 1.114. Applicant's submission filed on July 16, 
2007 has been entered. 

Response to Arguments 

3. The Applicant argues that the claims, as amended, may be distinguished from 
the teachings of Kohl. The Applicant asserts that Kohl fails to teach the feature now 
found in the independent claims as amended by the latest reply, of a server generating 
a new temporary secret key in response to a request from the Key Distribution Center. 
However, the Examiner maintains that such is indeed taught by Kohl, at, for example 
Sec. 4.2: Additional Fields, page 36 where a KEY_EXP message is used by the KDC to 
inform a server to generate a new secret key. 
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Claim Objections 

4. Claims 14, 32, and 50 are objected to under 37 CFR 1 .75(c), as being of 
improper dependent form for failing to further limit the subject matter of a previous 
claim. Applicant is required to cancel the claim(s), or amend the claim(s) to place the 
claim(s) in proper dependent form, or rewrite the claim(s) in independent form. 

Independent claims 1,19, and 37 have been amended in the latest response, 
filed July 16, 2007, such that they now recite the limitation "...wherein the server 
generates a new temporary secret key in response to a request from the KDC for a new 
temporary secret key..." Claims 14, 32, and 50 recite almost identical language. 

Claim Rejections - 35 USC §112 

5. The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

6. Claims 1-11, 13-29, 31-47, and 49-57 are rejected under 35 U.S.C. 112, second 
paragraph, as being indefinite for failing to particularly point out and distinctly claim the 
subject matter which applicant regards as the invention. 

Independent claims 1,19, and 37 each recite the limitation: "...thereby avoiding 
the overhead of periodically establishing a new temporary secret key." The meaning of 
the passage is not clear when one considers that a KDC's request to a server in 
establishing a new temporary secret key would still involve "overhead" in the form of 
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messaging, and authentication routines between the server and KDC in key 
transmission. Claims 2-11, 13-18, 20-29, 31-36, 38-47, and 49-57 depend from claims 
1, 19, and 37 and are therefore rejected on the same basis as are those claims. 

Claim Rejections - 35 USC § 103 

7. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set. 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

8. Claims 1, 4, 5, 8, 9, 13, 15, 16, 18, 19, 22, 23, 26, 27, 31, 33, 34, 36, 37, 40, 41, 
44, 45, 49, 51, 52, and 54 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Bruce Schneier, Applied Cryptography 2 nd Edition, Oct. 1995, John Wiley & Sons 
Pub. Pages 43-57, in view of Medvinski et al., "Public Key Utilizing Tickets For 
Application Servers" Internet Draft: Common Authentication Technology Working 
Group, March 1998, pages 1-6, and Kohl etal., "The Kerberos Network Authentication 
Service", Network Working Group Request For Comments (RFC) 1510, Sept. 1993. 

As for claims, 1,19, and 37; The claims each recite a method, a computer 
program-product causing a system to carry out a method, and a system configured to 
carry out the method, where a communication from a server is received at a key 
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distribution center, where the communication is authenticated, and where the 
communication contains a secret key which is then stored at the key distribution center. 

Schneier teaches a method by which a key may be sent from one communicant 
to another by means of an authenticated communication in Chapter 3: "Basic Protocols" 
pages 47-57, where a session key is distributed from one communicant to another via a 
public key protocol. The message is taught as authenticated by virtue of its decryption 
by a receiver using a public key of a sender, the sender passing a message and key 
encrypted under a private key held only by the sender and uniquely corresponding to 
the sender's public key. Schneier teaches the use of such distribution of session keys 
by public key techniques, involving key distribution centers and servers in pages 43-44: 
"Attacks Against Public Key Cryptography." 

Medvinski teaches the use of a secret key with a limited lifespan intended to 
reduce KDC vulnerability (page 57: "Key Expiration"). Therefore it would have been 
obvious to one of ordinary skill in the art at the time of the invention to incorporate this 
feature of Medvinski into the system of Schneier. Motive to make the combination is 
found on page 1 of Medvinski Sec. 2: "Introduction" where the advantage of Public Key 
extensions to Kerberos is discussed. Schneier teaches a new, temporary, secret key 
that is subsequently generated to replace an invalid temporary secret key (page 47, 
Sec. 3.1 : "Key Exchange": where a secret or session key is valid for only one 
communication session, and a new one is generated for each new session). 

The combination of Schneier and Medvinski does not teach a temporary secret 
key that becomes invalid after a specified time. However Kohl teaches this feature 
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(page 18, Sec. 3.1.5: "key expiration time", pages 35-36, Sec. 4.2: key expiration is 
discussed in conjunction with password aging, page 56-57, Sec. 5.4.2: key-expiration). 
Therefore it would have been obvious to one of ordinary skill in the art at the time of the 
invention to incorporate these features into the system of Schneier and Medvinski. It 
would have been desirable to do so as limitations on the lifetime of a key would 
decrease the likelihood of replay attacks using an old key. 

The combination of Schneier and Medvinski does not teach a step where a new 
temporary secret key is generated in response to a request from the KDC for a new 
temporary secret key to replace an invalid temporary secret key. However, Kohl does 
teach this feature (Sec. 4.2: Additional Fields, page 36, a KEY_EXP message is used 
by the KDC to inform a server to generate a new secret key), This step reduces 
overhead for at least one of the communicating entities in Kohl since only one will be 
required to establish the new key. Therefore it would have been obvious to one of 
ordinary skill in the art at the time of the invention to incorporate this feature into the 
system of Schneier and Medvinski. It would have been desirable to do so since 
requiring a refreshed secret key at periodic time intervals reduces the likelihood of 
compromising the security of the system via replay attacks. 

As for claims 4, 22, and 40, Kohl teaches the feature of the claim that Schneier 
and Medvinski don't not, namely wherein assembling the message involves including an 
expiration time for the session key in the message (page 18, sec. 3.1 .5: Key Expiration 
Field). Therefore it would have been obvious to one of ordinary skill in the art at the time 
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of the invention to incorporate this feature of into the system of Schneier and Medvinski. 
It would have been desirable to do so as the use of an expiration date for the key would 
prevent a replay attack by an eavesdropper. 

As for claims 5, 23, and 41 , Schneier teaches a step where allowing the client to 
forward the ticket to the server includes allowing the client to forward an identifier for the 
temporary secret key to the server so that the server can know which temporary secret 
key to use in decrypting the ticket (page 568, Credentials, where the client i.d. is 
authenticated and serves as a session key identifier). 

As for claims 8, 26, and 44, Schneier teaches the step of receiving the 
communication from the server involves authenticating the server (page 570, 
"Requesting a Service"). 

As for claims 9, 27, and 45, Schneier teaches a step of authenticating the server 
that involves using authentication information pertaining to the server, the authentication 
information including a certificate chain from a trust anchor to the server, and including 
a server public key that is associated with a server private key to form a public key- 
private key pair associated with the server (page 575-577: "Certificates"). 

As for claims 13, 31 , and 49, Schneier teaches a step wherein the 
communication is signed with a server private key so that the KDC can use a 
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corresponding server public key to verify that the communication was sent by the server 
(page 53-54: "Authentication Using Public Key Cryptography). 

As for claims 15, 33, and 51, Schneier teaches communicating information to the 
server that enables the server to authenticate the KDC (pages 53-54, Authentication 
Using Public Key Cryptography). 

As for claims 16, 34, and 52, Schneier teaches a KDC operating in accordance 
with the Kerberos standard (page 60, Kerberos). 

As for claims 18, 36, and 54, Medvinski teaches the features of the claim not 
taught by Schneier, namely propagating the temporary secret key to multiple KDC's 
(page 5, sec. 5.1.3. "Cross realm Authentication"). Therefore it would have been 
obvious to one of ordinary skill in the art at the time of the invention to incorporate this 
feature into the system of Schneier. It would have been desirable to do so as this would 
allow for distributed authentication across many domains. 

As for claims 55, 56, and 57, Schneier does not teach the additional limitation of 
a temporary secret key being encrypted with a public key belonging to the KDC, so that 
the temporary secret key can only be decrypted using a private key belonging to the 
KDC. However, Medvinski et al. teach this feature in a public key extension to the 
Kerberos protocol (page 2, PKTGS_REQ: Client to Server). Therefore it would have 
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been obvious to one of ordinary skill in the art at the time the invention was made to 
incorporate this feature of Medvinski into the system of Schneier. It would have been 
desirable to do so since this would increase the security of key storage at the KDC. 

9. Claims 14, 17, 32, 35, 50, and 53 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Bruce Schneier, Applied Cryptography 2 nd Edition, Oct. 1995, John 
Wiley & Sons Pub. Pages 43-57, in view of Medvinski et al., "Public Key Utilizing Tickets 
For Application Servers" Internet Draft: Common Authentication Technology Working 
Group, March 1998, pages 1-6. 

As for claims 14, 32, and 50, Official Notice may be taken that the step of an 
initial key request message sent by a KDC to the server indicating that the temporary 
secret key is needed from the server is old and well known in the art of secure 
communications. A good example of this process is one found in the registration of new 
nodes in multicast systems. Therefore it would have been obvious to one of ordinary 
skill in the art at the time of the invention to incorporate this feature into the system of 
Schneier and Medvinski. It would have been desirable to do so as this would allow for 
rapid client-server service request response processing. 

As for claim 17, 35, and 53, Official Notice may be taken that the step of an 
authentication communication received from a server that additionally includes an 
identifier for the server is one that is old and well known in the art of secure 
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communications. Therefore it would have been obvious to one of ordinary skill in the art 
at the time of the invention to incorporate this feature into the system of Schneier and 
Medvinski. It would have been desirable to do so as such an identifier would allow for 
mutual authentication of the server and KDC. 

10. Claims, 2, 3, 6, 7, 10, 11, 20, 21, 24, 25, 28, 29, 38, 39, 42, 43, 46, and 47 are 
rejected under 35 U.S.C. 103(a) as being unpatentable over Bruce Schneier, Applied 
Cryptography 2 nd Edition, Oct. 1995, John Wiley & Sons Pub. Pages 43-57, in view of 
Medvinski et al., "Public Key Utilizing Tickets For Application Servers" Internet Draft: 
Common Authentication Technology Working Group, March 1998, pages 1-6, Sirbu et 
al., "Public Key Based Ticket Granting Service in Kerberos" Internet-Draft, May 6, 1996, 
pages 1-16, and Official Notice taken as detailed below. 

As for claims 2, 20, and 38, Sirbu teaches the limitations of these claims that the 
combination of Schneier and Medvinski et al. fails to teach, namely where upon 
receiving a request from a client at the KDC to communicate with a server, further 
facilitating communications between the client and the server by: producing a session 
key to be used in communications between the client and server; (page 2, Sec. 3.1 PK 
Kerberos Operation) creating a ticket to the server by encrypting an identifier for the 
client and the session key with the temporary secret key for the server (page 3, Sec. 
3.1: PK Kerberos Operation); and assembling a message that includes the identifier for 
the server, the session key and the ticket to the server; and sending the message to the 
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client in a secure manner (page 3, Sec. 4: Message Exchanges); and allowing the client 
to forward the ticket to the server in order to initiate communications between the client 
and the server (page 3, Sec. 4: Message Exchanges). Therefore it would have been 
obvious to one of ordinary skill in the art at the time of the invention to incorporate this 
feature of Sirbu et al. into the system of Schneier and Medvinski. Motive to make this 
combination is found for example in page 2 sec. 2 of Sirbu et al., where the absence of 
long term storage of secret keys is discussed. 

As for claims 3, 21 , and 39, Sirbu teaches the features of the claim not taught by. 
the combination of Schneier and Medvinski, namely, upon receiving the ticket from the 
client at the server, the method further comprises: decrypting the ticket at the server 
using the temporary secret key to restore the session key and the identifier for the client 
(pages 2-3, Sec. 3.1 PK Kerberos Operation, page. 5, Sec. 4.2.2: Receipt of PKTGS- 
ReQ); and using the session key at the server to protect subsequent communications 
between the server and the client. (Pages 2-3, Sec. 3.1 : PK Kerberos Operation, page. 
5, Sec. 4.2.2: Receipt of PKTGS-ReQ). Therefore it would have been obvious to one of 
ordinary skill in the art at the time of the invention to incorporate this feature of Sirbu et 
al. into the system of Schneier and Medvinski. Motive to make this combination is found 
for example in page 2 sec. 2, where the absence of long-term storage of secret keys is 
discussed. 
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As for claims 6, 24, and 42, Sirbu teaches the features of the claims that the 
combination of Schneier and Medvinski do not teach, namely wherein sending the 
message to the client in the secure manner involves encrypting the message with a 
second session key that was previously communicated to the client by the KDC (page 2 
sec. 3.1 PK Kerberos Operation). Therefore it would have been obvious to one of 
ordinary skill in the art at the time of the invention to incorporate this feature into the 
system of Schneier and Medvinski. It would have been desirable to do so as this would 
allow for reduced computational overhead in the message exchange. 

As for claims 7, 25, and 43, Sirbu teaches the features of the claim not taught by 
the combination of Schneier and Medvinski, namely alternatively creating the ticket to 
the server by encrypting the identifier for the client and the session key with one of: a 
public key for the server; and a secret key for the server previously agreed upon 
between the server and the KDC and stored at the KDC (page 7 Sec. 5.3 PKTGS- 
REQ). Therefore it would have been obvious to one of ordinary skill in the art at the time 
of the invention to incorporate this feature into the system of Schneier and Medvinski. It 
would have been desirable to do so as this would allow only an entity knowing the 
secret key associated with the public key of the server to decrypt. 

As for claims 10, 28, and 46, Sirbu teaches a step wherein authenticating the 
server involves authenticating the server without having prior configuration information 
pertaining to the server at the KDC (page 2 sec. 1 Motivation). Therefore it would have 
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been obvious to one of ordinary skill in the art at the time of the invention to incorporate 
this feature into the system of Schneier and Medvinski. It would have been desirable to 
do so as this would allow for authentication directly between a client and server without 
the computational overhead associated with a trusted third party. 

As for claims 1 1 , 29, and 47, Sirbu teaches the features of the claim not taught 
by the combination of Schneier and Medvinski, namely authenticating the server 
includes using a server public key that is stored locally in the KDC (page 2 sec. 3.1 PK 
Kerberos Operation). Therefore it would have been obvious to one of ordinary skill in 
the art at the time of the invention to incorporate this feature into the system of Schneier 
and Medvinski. Motive to make the combination is found on page 1 of Medvinski Sec. 2: 
"Introduction" where the advantage of Public Key extensions to Kerberos is discussed. 

Conclusion 

1 1 . Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Paul E. Callahan whose telephone number is (571) 272- 
3869. The examiner can normally be reached on M-F from 9 to 5. 

If attempts to reach the examiner by telephone are unsuccessful, the Examinees 
supervisor, Emmanuel Moise, can be reached on (571) 272-3865. The fax phone 
number for the organization where this application or proceeding is assigned is: (571) 
273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 




/Paul Callahan/ 
September 27, 2007 
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